[QPID-8353] [Broker-J][JMS AMQP 0-x] Add support for TLSv1.3 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: qpid-java-broker-7.1.5, qpid-java-client-0-x-6.3.5
Component/s: Broker-J, JMS AMQP 0-x
Labels:
None

Description

As part of ~~QPID-7056~~ the functionality for establishing TLS connectivity in Qpid Broker-J and JMS client for AMQP 0-x have been changed to enforce creation of SSLContext with a hard-coded sub-set of TLS protocols (TLSv1.2, TLSv1.1, TLS, TLSv1). See SSLUtil#tryGetSSLContext(). As result, both broker and client might not be able to establish TLSv1.3 connections when JDK 11 or above is used unless TLSv1.2, TLSv1.1 are explicitly blacklisted. The code needs to be improved to allow TLSv1.3.

Attachments

Issue Links

links to

GitHub Pull Request #38

Activity

People

Assignee:: Alex Rudyy

Reporter:: Alex Rudyy

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 31/Jul/19 09:44

Updated:: 28/May/20 13:45

Resolved:: 29/Sep/19 22:29